THE ROLE OF RISK MANAGEMENT IN IMPROVING THE CYBER RESILIENCE OF AN ORGANISATION IN THE CONTEXT OF HYBRID THREATS
DOI:
https://doi.org/10.28925/2663-4023.2025.31.1060Keywords:
cybersecurity, cyber resilience, hybrid threats, risk management, risk control, information securityAbstract
The article provides a comprehensive study of the role of risk management in ensuring the cyber resilience of an organisation in the context of intensifying hybrid threats that combine cybernetic, informational-psychological, organisational and technological influences. The relevance of the study is due to the increasing complexity of the modern security environment, in which traditional approaches to cybersecurity are proving insufficiently effective without taking into account systemic risks and uncertainties. The paper analyses the essence of hybrid threats and hybrid influences, identifies their key characteristics, mechanisms of implementation and consequences for the functioning of the information infrastructure of organisations. Particular attention is paid to the impact of such threats on critical information resources, business processes and business continuity. It summarises current scientific approaches to cyber risk management, including standardised and adaptive models used in international practice. The main elements of a risk-oriented approach to ensuring cyber resilience are considered, including threat identification, assessment of the probability and potential consequences of risks, prioritisation of responses, and monitoring and review of the organisation's risk profile. The possibilities of integrating risk management into the overall system of cybersecurity management, corporate governance, and strategic planning are analysed. The advantages of applying a risk-oriented approach compared to fragmented or reactive protection measures are demonstrated. The article proposes a model for improving the cyber resilience of an organisation by optimising risk management processes, which involves coordinating technical, organisational and managerial measures, raising staff awareness and developing a risk management culture. The results of the study show that effective and systematic implementation of risk management is a basic condition for forming an organisational structure that is resistant to hybrid threats, ensuring the security of critical information resources and increasing the adaptability of organisations to the dynamic challenges of the modern cyberspace.
Downloads
References
Visure Solutions. (2025). Top 10+ best risk management software solutions and tools for 2025. https://visuresolutions.com/uk/alm-guide/найкраще-програмне-забезпечення-для-управління-ризиками-a/
Auzina, I., Volkova, T., Norena-Chavez, D., Kadłubek, M., & Thalassinos, E. (2023). Cyber incident response managerial approaches for enhancing small- and medium-sized enterprises’ cyber maturity. In Digital transformation, strategic resilience, cyber security and risk management (pp. 175–190). Emerald Publishing Limited. https://doi.org/10.1108/s1569-37592023000111a012
OECD. (2017). Growing cyber risk and the contribution of insurance to cyber risk management. In Enhancing the role of insurance in cyber risk management (pp. 11–17). https://doi.org/10.1787/9789264282148-3-en
Järveläinen, J., Dang, D., Mekkanen, M., & Vartiainen, T. (2025). Towards a framework for improving cybersecurity resilience of critical infrastructure against cyber threats: A dynamic capabilities approach. Journal of Decision Systems, 34(1). https://doi.org/10.1080/12460125.2025.2479546
Jazairy, A., Brho, M., Manuj, I., & Goldsby, T. J. (2024). Cyber risk management strategies and integration: Toward supply chain cyber resilience and robustness. International Journal of Physical Distribution & Logistics Management, 54(11), 1–29. https://doi.org/10.1108/IJPDLM-12-2023-0445
Lazebnyk, I. O., & Arnautova, Y. A. (2020). The methodological foundations of statistical analysis of the labor market in Ukraine and the role of HR management in improving the quality of human resources. Business Inform, 10(513), 220–227. https://doi.org/10.32983/2222-4459-2020-10-220-227
Mer, A. (2023). Artificial intelligence in human resource management: Recent trends and research agenda. In Digital transformation, strategic resilience, cyber security and risk management (pp. 31–56). Emerald Publishing Limited. https://doi.org/10.1108/s1569-37592023000111b003
KPMG. (2025). Cybersecurity and IT risk management. https://kpmg.com/ua/uk/home/services/consulting/technology/information-protection-and-cyber-security.html
PwC. (2025). Building cybersecurity through top management collaboration. https://www.pwc.com/ua/uk/survey/2025/cee-findings-from-the-2025-global-digital-trust-insights-survey.html
Published
How to Cite
Issue
Section
License
Copyright (c) 2025 Діана Примаченко, Світлана Легомінова
This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.
